Zero-Knowledge Architecture

Your passwords are probably not as safe as you think.

Most password managers encrypt your data — but hold the keys. Nodus Vault does not. Everything is encrypted on your device before it leaves it. Not even we can read your passwords.

macOS · Desktop appWindows · Desktop appChrome · Browser extensionFirefox · Browser extensioniOS · Mobile appAndroid · Coming soon

Get Vault free How it works

The threat is real — and it is accelerating.

AI has made it trivially easy to craft convincing phishing attacks at scale. And when companies holding your data get breached, your passwords are only safe if no one — not even the storage provider — can decrypt them.

1,265%

surge in phishing attacks since AI tools became widely available

Zscaler ThreatLabz 2024

5 min

is all it takes to launch a targeted AI phishing campaign (vs. 16 hours manually)

IBM Security X-Force

202%

increase in phishing volume in the second half of 2024 alone

Egress Threat Intelligence

~1M

Basic-Fit members had personal and bank account details exposed in April 2026

NOS / Basic-Fit

April 2026 — Booking.com: Names, email addresses, phone numbers, home addresses, full booking details and account PINs were exposed in a large-scale data breach affecting millions of customers across Europe and beyond. Booking.com reset PINs and notified affected users.

April 2026 — Basic-Fit: Approximately 1 million gym members across 6 countries had personal details and bank account information compromised. Data was reportedly put up for sale on underground forums.

ETH Zurich Research — February 2026

"Zero-knowledge" is a claim. For most managers, it does not hold up.

Researchers at ETH Zurich published a formal cryptographic analysis of the three most widely used password managers. They found a combined 27 distinct attack paths — all routes by which a compromised server could expose your plaintext passwords, despite the managers' zero-knowledge marketing claims.

Read the full paper at iacr.org

Attack paths found per manager

Bitwarden12 paths

LastPass7 paths

Dashlane6 paths

Nodus Vault0 paths

Server never holds decryption keys

What zero-knowledge actually means

It is not a marketing phrase. It is a cryptographic guarantee with a precise meaning.

Traditional password manager

You give the manager a locked box and your key. They use your key to open the box, copy the contents into their own locked room, then give you back a copy of your key. Their room can be broken into. Their copy of your key can be stolen.

Server can decrypt your data if compromised

Encryption keys derived or accessible server-side

Trust depends on the provider staying secure

Nodus Vault — zero-knowledge

You lock the box on your device with your own key — a key derived from your master password using Argon2id, which never leaves your machine. We only ever receive the locked box. We do not have your key. We physically cannot open it.

Encryption happens on your device only

Master password never transmitted or stored

Server breach exposes only encrypted ciphertext

What happens when you save a password

You type

Password entered on your device

Key derived

Argon2id derives encryption key from your master password — locally

Encrypted

AES-256-GCM encrypts the entry on your device

Transmitted

Only the encrypted blob leaves your device

Stored

Server stores ciphertext it cannot read

Decryption only happens when you open your vault — on your device, with your key.

Three layers between you and any breach

Even if an attacker gets through one layer, the next one stops them.

Layer 1

Encrypted database

The entire vault database is encrypted at rest. No raw tables, no plaintext storage. An attacker who copies the database file gets nothing legible.

Layer 2

Vault key

Each vault is protected by its own key, derived from your master password using Argon2id — a memory-hard algorithm that makes brute-force attacks computationally infeasible.

Layer 3

Per-secret encryption

Every individual credential is encrypted with its own key. Compromising one entry reveals nothing about any other. AES-256-GCM with unique IVs per entry.

Full architecture walkthrough Cryptographic specification

One vault. All your devices.

Autofill in your browser. Unlock on your phone. Manage from your desktop. Everything in sync — encrypted end-to-end.

macOS + Windows

Desktop app

Full-featured desktop app. Manage your vault, generate strong passwords, copy credentials instantly. Works offline — no internet needed to access your passwords.

Chrome + Firefox

Browser extension

Autofill usernames and passwords directly into any website form. Save new credentials from the browser in one click. Works without leaving your current tab.

iOS

Mobile app · Android coming

Access your vault on the go. Biometric unlock, password generator, and seamless sync with your desktop vault. Android support is in development.

Simple, transparent pricing

Free forever for personal use. Upgrade when you need sync or sharing.

Nodus Vault

macOSWindowsiOSAndroid soon

Free

Unlimited passwords
macOS, Windows, iOS apps
Chrome & Firefox extension
Autofill in any browser
AES-256-GCM encryption
Local-first, works offline

Popular

Nodus Vault

macOSWindowsiOSAndroid soon

Pro

€3/month

14-day free trial, then €3/month

Everything in Free
Encrypted cloud sync across all devices
Secure sharing with individuals
Priority support
Early access to new features

Start free trial

Nodus Vault

macOSWindowsiOSAndroid soon

Team

€2/user

14-day free trial, then €2/user/month

Everything in Pro
Shared team vaults
Role-based access control
Centralized admin dashboard
Audit logs
SSO-ready

Start free trial

Start with a vault they cannot crack.

Free forever for personal use. No credit card. No master-password recovery (which is the point — if we could recover it, so could an attacker).

Get Vault free See how it works